Re: [dmarc-ietf] Response to a claim in draft-crocker-dmarc-author-00 security considerations

Hector Santos <hsantos@isdg.net> Sun, 26 July 2020 15:17 UTC

Return-Path: <hsantos@isdg.net>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 677213A0F45 for <dmarc@ietfa.amsl.com>; Sun, 26 Jul 2020 08:17:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.701
X-Spam-Level:
X-Spam-Status: No, score=-0.701 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=isdg.net header.b=dMDvr2Mb; dkim=pass (1024-bit key) header.d=beta.winserver.com header.b=l3lUkh9j
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 80FN6XBW1ZsC for <dmarc@ietfa.amsl.com>; Sun, 26 Jul 2020 08:17:06 -0700 (PDT)
Received: from mail.winserver.com (ftp.catinthebox.net [76.245.57.69]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 75D983A0F43 for <dmarc@ietf.org>; Sun, 26 Jul 2020 08:17:06 -0700 (PDT)
DKIM-Signature: v=1; d=isdg.net; s=tms1; a=rsa-sha1; c=simple/relaxed; l=596; t=1595776620; atps=ietf.org; atpsh=sha1; h=Received:Received:Received:Received:Message-ID:Date:From: Organization:To:Subject:List-ID; bh=pTqezOJjKSpXjbdTgxEfw+7xiDw=; b=dMDvr2MbjeHtI5qv+or3ZxlVhVCNnbMpGcXVW7R1q4MfEXl1yZTXwFNvniTJnm Ljzm+2Ex6tJ5ktaEsnKJ37K1s57bYevQA1BypuP2U10Klne+b7VEfDVPZHd4Y8G3 f69i0H34NJJ0ZjIJrBiVK8ibSr019Hs7NPx8mFBzfnU2Q=
Received: by mail.winserver.com (Wildcat! SMTP Router v8.0.454.10) for dmarc@ietf.org; Sun, 26 Jul 2020 11:17:00 -0400
Authentication-Results: dkim.winserver.com; dkim=pass header.d=beta.winserver.com header.s=tms1 header.i=beta.winserver.com; dmarc=pass policy=reject author.d=isdg.net signer.d=beta.winserver.com (atps signer);
Received: from beta.winserver.com ([76.245.57.74]) by mail.winserver.com (Wildcat! SMTP v8.0.454.10) with ESMTP id 2208915047.1.4800; Sun, 26 Jul 2020 11:16:59 -0400
DKIM-Signature: v=1; d=beta.winserver.com; s=tms1; a=rsa-sha256; c=simple/relaxed; l=596; t=1595776513; h=Received:Received: Message-ID:Date:From:Organization:To:Subject:List-ID; bh=u4VtEe1 k0Ligjq7o6H4o+kCK+VtFg2cPgNndXubWOkQ=; b=l3lUkh9jw7oX0LJePYhKHjn dVd7b4eP2o7Fa/MeqxOqLqaumjGKs5gXmbY3+mWRc9biPWrTCdlUDwVYkHanCLKd dRvXN9vUnuWOFKA5XhO33yEjnuZi7SXN7jNrRZqCg5wrSP57QTJi6R2qY4Lns6km gTvVtDKiQIOqdktusaP0=
Received: by beta.winserver.com (Wildcat! SMTP Router v8.0.454.10) for dmarc@ietf.org; Sun, 26 Jul 2020 11:15:13 -0400
Received: from [192.168.1.68] ([75.26.216.248]) by beta.winserver.com (Wildcat! SMTP v8.0.454.10) with ESMTP id 1919687890.1.54660; Sun, 26 Jul 2020 11:15:12 -0400
Message-ID: <5F1D9E69.5060605@isdg.net>
Date: Sun, 26 Jul 2020 11:16:57 -0400
From: Hector Santos <hsantos@isdg.net>
Reply-To: hsantos@isdg.net
Organization: Santronics Software, Inc.
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.8.1
MIME-Version: 1.0
To: dmarc@ietf.org
References: <cd9258e6-3917-2380-dd9b-66d74f3a64d3@gmail.com> <20200717210053.674D61D2C431@ary.qy> <CAL0qLwbkhG-qUyGqxaEjcFn2Lb7wPMhcPFEMA8eqptBJpePPxA@mail.gmail.com> <8efcf71c-f841-46a4-10b7-feb41a741405@gmail.com> <CAL0qLwbK7GQXkiS+H8GtsvHMzWr4o431Shc7Cc9MhqsTiHfzFw@mail.gmail.com> <bc7ed18c-8f1d-b41b-0a4b-3aa180a63563@gmail.com> <CAL0qLwYgs7py1aTQ87pykNT_0dpnrKz=+1DxMMSQMgbwz4XZDg@mail.gmail.com> <381c7792-5bd8-a1be-6b93-b7df015a2333@gmail.com> <d8bab034-7539-fbb4-faa0-daf6aa51e087@wisc.edu> <1442df0b-c885-f8da-67f5-93f51a683937@dcrocker.net>
In-Reply-To: <1442df0b-c885-f8da-67f5-93f51a683937@dcrocker.net>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/GZwrpf_cgsAumDDDwgvmj9joZ9k>
Subject: Re: [dmarc-ietf] Response to a claim in draft-crocker-dmarc-author-00 security considerations
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 26 Jul 2020 15:17:08 -0000

On 7/26/2020 7:40 AM, Dave Crocker wrote:

> My wording was not careful enough.  What I /meant/ was: end-users are
> not relevant to the /trust-related decision making/ that is the goal
> of these protection mechanisms.

This may be a philosophical theory, but in reality, in lieu of having 
deterministic mechanisms, we do have mail systems who do allow the 
user to make these type of trust decisions.  If a trust-related 
question is answered wrong by the user, the true victim is the honest 
sender.

-- 
Hector Santos,
https://secure.santronics.com
https://twitter.com/hectorsantos